Apple said it is working on a fix for the latest text bomb bug that crashes a number of iOS and Mac apps that display specific Telugu language characters.
Malicious e-mail attachments used in this campaign don’t display any warnings when opened and silently install malware.
Researchers now believe attackers may have had prior access to networks and that malware was more sophisticated than originally believed.
Emails try to get recipients to share revealing photos of themselves so scammers can later extort them later.
The attack could have been averted through a technique called subresource integrity, according to researcher Scott Helme.
Cisco has issued patches for the vulnerability, which could be up to seven years old.
The grammar-checking web service fixed the problem with “impressive" speed, a Google researcher says.
Researchers have found a new covert data exchange technique that abuses the TLS protocol that can circumvent traditional network perimeter protections.
Two new WD My Cloud vulnerabilities have been identified, adding to last month’s bevy of security bugs.
Oracle has issued a fix, but many Micros systems could still be vulnerable.